santanna-pisa-monitor-skill

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only guide for checking public Sant'Anna Pisa opportunity pages and does not install code, request credentials, or run background tasks by itself.

Install this if you want an agent to browse public Sant'Anna Pisa pages and summarize opportunities. Set up recurring monitoring only if you are comfortable with periodic website visits and have chosen where change history or reports should be stored.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The skill is broadly described as monitoring multiple categories of public content, but it does not define clear invocation boundaries, user intent requirements, or rate/target constraints. In an agent environment, this ambiguity can cause over-broad activation, excessive browsing, or unintended autonomous monitoring of external sites beyond what the user explicitly requested.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal